Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otRLL7m_YTy-pMPP_DCwkMgAvww.roa
File: otRLL7m_YTy-pMPP_DCwkMgAvww.roa (raw, json)
Hash identifier: nSIXTqtXHhlKZ7+1xI73d+j96H5jlxSYLdvWxUkBmwg=
Subject key identifier: A2:D4:4B:2F:B9:BF:61:3C:BE:A4:C3:CF:FC:30:B0:90:C8:00:BF:0C
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0F9C
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otRLL7m_YTy-pMPP_DCwkMgAvww.roa
Signing time: Fri 01 Sep 2023 09:37:03 +0000
ROA not before: Fri 01 Sep 2023 09:37:03 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 9924
IP address blocks: 210.62.0.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3996 (0xf9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 1 09:37:03 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A2D44B2FB9BF613CBEA4C3CFFC30B090C800BF0C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:26:8a:f7:5f:c1:14:87:6f:66:21:18:85:64:
1c:33:9a:78:42:1d:8f:19:af:a8:fb:b0:b4:a9:6d:
73:70:2a:66:5c:1f:93:b2:03:8e:14:fc:cc:1d:86:
7f:46:17:74:4b:ea:4d:61:02:ad:e2:9f:df:ba:00:
ea:c8:0f:8d:6d:14:4f:01:d6:f2:d1:28:69:87:c8:
da:54:41:6f:51:71:42:e3:8b:0f:40:ce:ef:ba:97:
80:f2:41:ce:77:80:f7:af:27:c5:f5:9d:d1:73:e2:
72:7c:a0:0c:5c:7b:61:b5:2a:d5:d1:7b:25:70:40:
f7:79:1c:19:d3:1d:19:71:75:f2:fa:d8:34:20:25:
0f:89:9f:65:4d:d8:7e:64:7a:77:ec:f1:51:2e:08:
33:64:bd:15:5d:f3:32:7f:60:49:f4:ba:a4:4c:01:
fc:5b:c1:15:57:44:1b:07:46:dd:1d:bf:6c:ce:91:
e0:3d:9d:54:2f:84:6a:5c:2c:33:1e:97:e9:d5:52:
89:c8:ba:e5:55:68:ab:01:c3:b2:56:78:3d:93:f8:
7d:9a:e7:2c:2d:1e:41:54:10:c5:3f:4c:8a:00:d1:
79:df:27:d8:99:f2:0e:88:5b:d2:19:d7:3c:f1:bd:
11:72:ee:34:a8:46:b5:ed:61:8a:43:6d:07:d4:64:
a6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:D4:4B:2F:B9:BF:61:3C:BE:A4:C3:CF:FC:30:B0:90:C8:00:BF:0C
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/otRLL7m_YTy-pMPP_DCwkMgAvww.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.62.0.0/19
Signature Algorithm: sha256WithRSAEncryption
81:bd:36:96:92:31:f3:e7:5e:92:d0:d1:4e:68:4b:fe:74:5c:
8c:46:e4:87:1b:3a:c4:04:bf:c2:2c:53:d7:67:94:bc:a7:ff:
9e:3d:a4:f0:7a:5a:c0:92:62:9e:62:60:6e:63:f5:f1:37:06:
78:48:ee:cb:58:0d:64:a1:84:f7:6d:04:da:80:48:e5:78:e3:
29:02:f3:35:5a:a5:6e:d6:7c:78:f9:db:bc:b9:cd:2f:5d:3a:
47:08:b5:c8:23:f1:61:e1:95:f8:60:72:5c:16:7d:5d:e0:4a:
31:d5:39:9f:34:c9:79:39:49:4c:5f:aa:36:5f:33:9b:2d:b8:
c8:df:09:fd:09:39:61:a2:f7:44:67:eb:9a:cd:52:89:09:ce:
ce:c5:f3:86:0a:dd:fb:eb:93:04:be:80:4d:ec:c4:6a:0e:44:
9d:41:e1:19:24:37:e5:e8:f9:bf:ce:90:72:2d:38:3d:20:af:
22:e1:f5:b8:f1:73:97:2b:9a:39:36:8f:c5:0d:7b:3f:d8:29:
88:a9:83:99:85:60:0f:09:5c:39:df:85:a8:56:15:28:41:45:
6a:c2:99:eb:45:b1:7b:ae:db:0d:e2:06:98:30:5b:d7:69:96:
9e:ba:ed:cc:77:28:79:23:c5:80:66:23:9b:3f:3c:c0:3a:20:
91:7f:13:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 26 08:57:22 2024 by rpki-client on console-fra.rpki-client.org